CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
EPSS
Percentile
84.1%
Gallery project reports:
Gallery 2.2.3 addresses the following security vulnerabilities:
Unauthorized renaming of items possible with WebDAV (reported
by Merrick Manalastas)
Unauthorized modification and retrieval of item properties
possible with WebDAV
Unauthorized locking and replacing of items possible with
WebDAV
Unauthorized editing of data file possible via linked items with
Reupload and WebDAV (reported by Nicklous Roberts)